diff options
author | Michal Čihař <mcihar@novell.com> | 2010-08-17 18:23:09 +0400 |
---|---|---|
committer | Michal Čihař <mcihar@novell.com> | 2010-08-18 13:30:19 +0400 |
commit | 7f266483b827fb05a4be11663003418c2ef1c878 (patch) | |
tree | ef165c6bd0529d405a942c8fa1e4abc953d90df4 /tbl_sql.php | |
parent | 5bcd95a42c8ba924d389eafee4d7be80bd4039a3 (diff) |
Fix XSS on delimiter in tbl_sql.php.
Diffstat (limited to 'tbl_sql.php')
-rw-r--r-- | tbl_sql.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/tbl_sql.php b/tbl_sql.php index 5565d923b7..f3c3aac6e3 100644 --- a/tbl_sql.php +++ b/tbl_sql.php @@ -38,7 +38,7 @@ require_once './libraries/tbl_links.inc.php'; /** * Query box, bookmark, insert data from textfile */ -PMA_sqlQueryForm(true, false, isset($_REQUEST['delimiter']) ? $_REQUEST['delimiter'] : ';'); +PMA_sqlQueryForm(true, false, isset($_REQUEST['delimiter']) ? htmlspecialchars($_REQUEST['delimiter']) : ';'); /** * Displays the footer |